firewall/ipt-gateway
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add support for Remote Desktop Services (RDS).

Browse Source
This commit is contained in:
Christoph
2026-03-11 14:06:08 +01:00
parent 1f5c01d8c9
commit b84a7d8527
5 changed files with 71 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
ipt-firewall-gateway
View File

@@ -4705,6 +4705,36 @@ else
fi
# ---
# - Remote Desktop Dienste (RDS)
# ---
echononl "\t\tRemote Desktop Dienste (RDS)"
if [[ ${#rds_server_ip_arr[@]} -gt 0 ]]; then
for _ip in ${rds_server_ip_arr[@]} ; do
$ipt -A OUTPUT -p tcp -d $_ip --dport $rds_server_tcp_port -m conntrack --ctstate NEW -j ACCEPT
if $kernel_activate_forwarding && ! $permit_between_local_networks ; then
$ipt -A FORWARD -p tcp -d $_ip --dport $rds_server_tcp_port -m conntrack --ctstate NEW -j ACCEPT
# - Rule is needed if (local) interface aliases in use (like eth0:1)
# -
if $local_alias_interfaces ; then
$ipt -A FORWARD -p tcp -d $_ip --dport $rds_server_tcp_port --tcp-flag ACK ACK -j ACCEPT
$ipt -A FORWARD -p tcp -s $_ip --sport $rds_server_tcp_port --tcp-flag ACK ACK -j ACCEPT
fi
fi
done
echo_done
else
echo_skipped
fi
# ---
# - Munin Service Gateway
# ---